CVE-2009-0789

Priority

Medium

Description

OpenSSL before 0.9.8k on WIN64 and certain other platforms does notproperly handle a malformed ASN.1 structure, which allows remote attackersto cause a denial of service (invalid memory access and application crash)by placing this structure in the public key of a certificate, asdemonstrated by an RSA public key.